Skip to content

ci: add Wazuh logtest validation contract#64

Merged
raylee-hawkins merged 2 commits into
mainfrom
feature/wazuh-logtest-validation-ci-001
Jun 1, 2026
Merged

ci: add Wazuh logtest validation contract#64
raylee-hawkins merged 2 commits into
mainfrom
feature/wazuh-logtest-validation-ci-001

Conversation

@raylee-hawkins

@raylee-hawkins raylee-hawkins commented Jun 1, 2026

Copy link
Copy Markdown
Contributor

Summary

  • Adds Wazuh logtest/static validation registry.
  • Adds controlled sample events for HO-DET-011 and HO-DET-012 Wazuh contract validation.
  • Adds static CI validation that does not require live Wazuh manager access by default.
  • Supports optional private wazuh-logtest execution later when a gated private runner provides it.

Boundaries

  • Does not prove live Wazuh routing.
  • Does not prove runtime signal.
  • Does not update public proof.
  • No live Wazuh manager config/rules/decoders were changed.
  • No deployment occurred.

Validation Evidence

  • python -B scripts\verify_validation_registry.py
  • python -B scripts\verify_all_validation_packages.py
  • python -B scripts\verify_validation_contract.py
  • python -B scripts\verify_wazuh_logtest_registry.py
  • python -B -m unittest discover -s tests
  • python -B scripts\verify_wazuh_logtest_registry.py --detections-root <detections worktree>
  • Result: passed
  • WAZUH_LOGTEST_REGISTRY=pass mode=static entries=3
  • Ran 49 tests ... OK

Proof Ceiling

SOURCE_AND_STATIC_CI_CONTRACT_ONLY

chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed Jun 1, 2026
View reviewed changes

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 7d49be65fb

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread scripts/verify_wazuh_logtest_registry.py Outdated
@raylee-hawkins

raylee-hawkins commented Jun 1, 2026

Copy link
Copy Markdown
Contributor Author

Human governance review for validation PR #64:

Reviewed the Wazuh logtest/static validation contract change.

This PR correctly adds a Wazuh validation registry, controlled sample event contracts for HO-DET-011 and HO-DET-012, and CI validation that does not require live Wazuh manager access by default.

Important boundary confirmed:

Static CI contract is enforced.
Optional private wazuh-logtest execution is future-gated.
No live Wazuh routing is proven.
No runtime signal is claimed.
No public proof update is made.
The validation repo remains validation authority, not deployment authority.

Checks are passing. This is merge-eligible after final merge gate, with proof ceiling remaining SOURCE_AND_STATIC_CI_CONTRACT_ONLY.

@raylee-hawkins raylee-hawkins merged commit 2b82cdc into main Jun 1, 2026
8 checks passed
@raylee-hawkins raylee-hawkins deleted the feature/wazuh-logtest-validation-ci-001 branch June 1, 2026 08:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@raylee-hawkins